2 matches found
CVE-2024-1541
The Gutenberg Blocks by Kadence Blocks – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the htmlTag attribute in all versions up to, and including, 3.2.23 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2024-1541
The Gutenberg Blocks by Kadence Blocks – Page Builder Features WordPress plugin (up to version 3.2.23) is affected by a Stored Cross-Site Scripting vulnerability via the htmlTag attribute due to insufficient input sanitization and output escaping. Exploitation requires authentication with Contrib...